$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: HeE5nwSocVqPSqS2TE30H1NIEAakdSqSnTxHeNxsPls= Subject key identifier: 8C:07:3A:85:22:1C:6C:8D:9B:7A:F7:7B:11:37:C3:0A:E3:FA:3D:AE Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 02E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 02D2 Signing time: Sat 23 Aug 2025 01:42:57 +0000 Manifest this update: Sat 23 Aug 2025 01:42:57 +0000 Manifest next update: Sat 30 Aug 2025 01:42:57 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: PcDfqgD0j8Xf1F7GAmxXPhXx1J9WEeNofbicW1qM8wk=) 2: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: sWRu/KJ6P64VeS1L+PAelF/6BKr+SrI1ab0xsyyupmc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 742 (0x2e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Aug 23 01:42:57 2025 GMT Not After : Aug 30 01:42:57 2025 GMT Subject: CN=68a91ca1-86ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d8:50:7d:de:8a:f4:34:23:8d:d5:f1:33:03: 9d:ba:78:0d:5d:35:1e:89:2e:1e:82:3f:ee:ec:e1: 6e:39:7c:44:99:11:9f:58:ab:81:0a:3c:75:67:a4: db:e0:fc:26:e0:32:76:f0:57:59:1e:cd:5f:40:6b: ca:32:d1:3d:6e:24:f3:e3:a0:0e:3e:50:08:4c:c5: ca:42:4d:c6:04:27:90:2f:b6:9b:6c:a2:0a:ea:a4: f3:f1:92:5e:e0:b8:7e:f9:99:5b:3a:d9:0e:98:7c: 16:04:41:2b:5b:78:ba:2c:f7:f1:6f:55:79:ad:73: 81:0f:20:fe:c0:6f:3b:e1:e6:4f:a6:2b:9b:90:cf: e9:d4:f1:10:26:20:d8:bb:77:9b:f2:d6:28:a8:85: 15:0d:bd:52:cf:00:be:ed:5e:16:e0:e9:9d:5c:45: 4d:ea:2d:7b:0c:3d:a6:95:49:c0:8d:7c:2d:c6:ce: 5e:21:eb:72:ca:7e:83:b6:ab:2c:c9:0c:dd:fb:66: 62:41:4f:6f:b1:05:29:0e:d9:c3:31:74:1c:a4:0c: 3f:23:4d:47:be:37:c0:24:9d:10:d7:19:c5:f1:95: 9d:01:4b:f7:05:3c:c8:07:4e:eb:89:d3:84:bb:d2: 1b:ac:e0:0d:5e:fe:92:cd:19:c8:5d:fe:bf:48:aa: 49:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:07:3A:85:22:1C:6C:8D:9B:7A:F7:7B:11:37:C3:0A:E3:FA:3D:AE X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:a5:89:e6:73:99:4b:49:db:ce:8a:88:50:e3:5d:bf:2f:81: a7:a7:b3:de:85:23:97:7b:44:94:3d:f3:35:fc:f5:3f:0c:5b: 49:24:3c:f6:71:b2:96:87:d3:70:50:3d:ea:5a:39:8f:fe:7f: 2f:7b:96:60:85:2c:2b:c7:3b:81:b0:54:c9:b4:21:34:ee:fe: 8e:4e:47:c1:bf:57:4b:4b:db:7f:6c:e2:10:73:b7:62:9f:cd: 5c:fc:d5:af:5a:a7:bb:bb:09:d4:40:9b:27:cc:91:de:54:75: 5c:65:c3:3e:12:8f:90:98:88:33:ba:37:49:45:fb:4e:a2:b0: 5e:b7:f1:81:b3:15:2d:3f:aa:a5:49:70:ea:95:c2:b5:0e:67: 45:ef:e9:29:76:8d:2f:38:51:49:05:ea:61:7f:0c:dc:58:43: e7:67:8d:3f:fb:20:e5:0d:d3:a6:48:21:b5:a2:91:d9:55:27: 6e:ba:8a:61:28:86:2d:df:a3:f2:4b:2a:e2:85:ca:ae:f6:3a: 6f:37:2d:f1:5b:4f:e4:60:f4:61:a9:e9:96:fd:5f:be:63:4f: 0e:00:d9:80:b9:e9:86:7c:6d:ff:7a:d1:92:7a:36:7a:f7:30: 04:66:52:17:55:13:b4:00:f7:6a:52:8e:07:57:9e:9b:5e:b5: a0:32:86:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjUwODIzMDE0MjU3WhcNMjUwODMwMDE0MjU3WjAYMRYwFAYD VQQDEw02OGE5MWNhMS04NmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9hQfd6K9DQjjdXxMwOdungNXTUeiS4egj/u7OFuOXxEmRGfWKuBCjx1Z6Tb 4Pwm4DJ28FdZHs1fQGvKMtE9biTz46AOPlAITMXKQk3GBCeQL7abbKIK6qTz8ZJe 4Lh++ZlbOtkOmHwWBEErW3i6LPfxb1V5rXOBDyD+wG874eZPpiubkM/p1PEQJiDY u3eb8tYoqIUVDb1SzwC+7V4W4OmdXEVN6i17DD2mlUnAjXwtxs5eIetyyn6Dtqss yQzd+2ZiQU9vsQUpDtnDMXQcpAw/I01HvjfAJJ0Q1xnF8ZWdAUv3BTzIB07ridOE u9IbrOANXv6SzRnIXf6/SKpJVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwHOoUi HGyNm3r3exE3wwrj+j2uMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQpYnmc5lLSdvOiohQ412/L4Gnp7PehSOXe0SUPfM1/PU/DFtJJDz2 cbKWh9NwUD3qWjmP/n8ve5ZghSwrxzuBsFTJtCE07v6OTkfBv1dLS9t/bOIQc7di n81c/NWvWqe7uwnUQJsnzJHeVHVcZcM+Eo+QmIgzujdJRftOorBet/GBsxUtP6ql SXDqlcK1DmdF7+kpdo0vOFFJBephfwzcWEPnZ40/+yDlDdOmSCG1opHZVSduuoph KIYt36PySyrihcqu9jpvNy3xW0/kYPRhqemW/V++Y08OANmAuemGfG3/etGSejZ6 9zAEZlIXVRO0APdqUo4HV56bXrWgMoZ6 -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:46 2025 by rpki-client